Lucene search
K

6329 matches found

CVE
CVE
added yesterday9 views

CVE-2026-9180

MotoPress Appointment Booking for WordPress (versions up to 2.4.4) is vulnerable to an Authorization Bypass via a user-controlled booking_id. The REST endpoint POST /motopress/appointment/v1/bookings is registered with a permissive permission_callback (return_true ), and createBooking() loads the...

5.3CVSS5.7AI score
Exploits0References6
EUVD
EUVD
added yesterday5 views

EUVD-2026-41492

The MotoPress Appointment Booking plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 2.4.4. This is due to the POST /motopress/appointment/v1/bookings REST endpoint being registered with 'permissioncallback' = 'returntrue',...

5.3CVSS5.7AI score
Exploits0References6
Circl
Circl
added 5 days ago6 views

CVE-2026-10823

creationtimestamp| type| source ---|---|--- 2026-06-29 12:00:04+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-10823.yaml 2026-06-30 00:00:03+00:00| confirmed|...

7.5CVSS5.8AI score0.00921EPSS
Exploits0References1
Circl
Circl
added 2026/06/22 2:53 a.m.4 views

CVE-2026-55592

creationtimestamp| type| source ---|---|--- 2026-06-22 02:53:55+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-55592.yaml 2026-06-24 15:00:04+00:00| confirmed|...

5.8AI score
Exploits0References1
Circl
Circl
added 2026/06/19 7:23 a.m.6 views

CVE-2026-54066

creationtimestamp| type| source ---|---|--- 2026-06-19 07:23:13+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-54066.yaml...

7.5CVSS5.8AI score0.01892EPSS
Exploits0References1
Circl
Circl
added 2026/06/17 4:18 a.m.14 views

CVE-2026-54069

creationtimestamp| type| source ---|---|--- 2026-06-17 04:18:47+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-54069.yaml...

9.2CVSS5AI score0.00607EPSS
Exploits0References1
Circl
Circl
added 2026/06/16 4:5 a.m.7 views

CVE-2025-61224

creationtimestamp| type| source ---|---|--- 2026-06-16 04:05:56+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-61224.yaml...

6.5CVSS4.9AI score0.01272EPSS
Exploits0References1
Circl
Circl
added 2026/06/12 2:49 a.m.8 views

CVE-2026-50230

creationtimestamp| type| source ---|---|--- 2026-06-12 02:49:16+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-50230.yaml...

6.1CVSS5AI score0.00324EPSS
Exploits2References1
Circl
Circl
added 2026/06/04 9:46 a.m.9 views

CVE-2026-2652

creationtimestamp| type| source ---|---|--- 2026-06-04 09:46:33+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-2652.yaml...

8.6CVSS5.8AI score0.01502EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/03 1:28 p.m.14 views

EUVD-2026-34094

ProjectsAndPrograms school-management-system uses predictable credentials by generating student's and teacher's passwords solely from the user’s date of birth e.g., 12072000 for 12 July 2000. The application does not require or prompt users to change the password upon first login. This behavior...

6.9CVSS5.8AI score0.00291EPSS
Exploits0References2
Circl
Circl
added 2026/05/25 9:50 a.m.10 views

CVE-2026-39352

creationtimestamp| type| source ---|---|--- 2026-05-25 09:50:58+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-39352.yaml...

8.7CVSS5.8AI score0.01279EPSS
Exploits0References1
Circl
Circl
added 2026/05/23 2:18 p.m.10 views

CVE-2024-9362

creationtimestamp| type| source ---|---|--- 2026-05-23 14:18:54+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-9362.yaml...

7.5CVSS7.1AI score0.04245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/12 12:42 p.m.13 views

CVE-2026-43913

A flaw was found in Vaultwarden, a Bitwarden-compatible server. An authenticated user, who has been invited as an organization owner and accepted the invitation but has not yet been confirmed by an existing owner, can exploit this vulnerability. By calling a specific API endpoint, this user can...

8.1CVSS5.7AI score0.00267EPSS
Exploits1References2
Circl
Circl
added 2026/05/10 12:0 p.m.15 views

CVE-2024-4322

creationtimestamp| type| source ---|---|--- 2026-05-10 12:00:46+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-4322.yaml...

7.5CVSS7.1AI score0.30765EPSS
Exploits1References1
Circl
Circl
added 2026/05/07 9:12 a.m.9 views

CVE-2026-40878

creationtimestamp| type| source ---|---|--- 2026-05-07 09:12:24+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-40878.yaml...

2.1CVSS5.8AI score0.00805EPSS
Exploits0References1
Circl
Circl
added 2026/04/23 6:53 a.m.3 views

CVE-2024-32825

creationtimestamp| type| source ---|---|--- 2026-04-23 06:53:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-32825.yaml 2026-04-23 21:03:12+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mk6vwtumpd2m...

7.5CVSS5.7AI score0.02015EPSS
Exploits0References2
Circl
Circl
added 2026/04/22 4:54 p.m.6 views

CVE-2025-62039

creationtimestamp| type| source ---|---|--- 2026-04-22 16:54:21+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-62039.yaml 2026-04-23 21:03:14+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mk6vwu4jqz2i...

7.5CVSS4.8AI score0.0119EPSS
Exploits0References2
Circl
Circl
added 2026/04/20 5:29 a.m.5 views

CVE-2021-26947

creationtimestamp| type| source ---|---|--- 2026-04-20 05:29:04+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-26947.yaml...

6.5CVSS6.9AI score0.0141EPSS
Exploits0References1
Circl
Circl
added 2026/04/19 12:17 p.m.3 views

CVE-2026-41179

creationtimestamp| type| source ---|---|--- 2026-04-19 12:17:45+00:00| published-proof-of-concept| https://github.com/rclone/rclone/security/advisories/GHSA-jfwf-28xr-xw6q 2026-04-19 12:17:45+00:00| published-proof-of-concept|...

9.8CVSS5.7AI score0.09199EPSS
Exploits2References6
UbuntuCve
UbuntuCve
added 2026/04/14 10:16 p.m.3 views

CVE-2026-33020

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow which leads to a heap buffer overflow via sixelframeconverttorgb888 in frame.c, where allocation size and pointer offset computations for palettised images PAL1, PAL...

7.1CVSS6.3AI score0.00205EPSS
Exploits1References3
Rows per page
Query Builder